$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852d978-23e6-49f4-9d03-547fcdc12c82.roa File: f852d978-23e6-49f4-9d03-547fcdc12c82.roa (raw, json) Hash identifier: XrmeDDMH8iLuELxrrdFGYC/fU9Y7VbyAowTSYIX+fzs= Subject key identifier: 3C:9F:12:91:7A:7F:5A:0C:57:E2:3D:74:7C:95:96:D7:D9:F0:2A:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A254802763C2200D25609141F4CBF9ECAD9AAA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852d978-23e6-49f4-9d03-547fcdc12c82.roa Signing time: Sat 07 Feb 2026 00:10:58 +0000 ROA not before: Sat 07 Feb 2026 00:10:58 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.180.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:25:48:02:76:3c:22:00:d2:56:09:14:1f:4c:bf:9e:ca:d9:aa:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:10:58 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=79f8a5229b429bd1e7d3dbb172c3d66adcbdcc0561975a44496563977c103b01, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:74:83:de:6f:ad:bf:03:e0:7c:62:92:f7:58: 2b:cd:ce:74:10:be:94:1e:b6:77:5c:d2:fb:e4:db: bb:22:4d:b4:fd:e4:f8:0e:00:ec:02:a4:49:96:5f: 08:e0:b4:ac:18:93:20:bc:5e:58:db:86:8a:af:36: 5e:a2:e1:9d:60:f8:b1:58:54:dc:27:14:0a:1d:b3: 77:8f:ad:04:43:94:c9:69:7a:e7:26:2d:23:33:dc: a0:22:37:47:ca:c9:2e:cf:2d:08:58:5a:86:75:59: 70:07:ac:08:e1:7e:7a:76:b1:86:dc:b8:56:38:fe: 02:fa:df:4c:ca:0b:c3:3c:f5:70:9a:94:9b:88:23: d7:cd:6f:01:88:70:5e:45:8c:fe:82:d4:35:63:6f: 07:e1:a4:29:e0:4f:34:0c:6c:f6:85:af:5d:86:fa: fe:89:ff:51:c3:a9:ab:54:13:a1:85:e7:52:1a:c3: b7:77:73:3a:6f:3c:fe:18:49:52:bd:02:74:38:1d: 75:84:3f:0e:7c:3d:9e:7e:a5:1d:70:18:4d:7d:40: f4:09:b7:a0:1d:2e:7f:7e:6e:f9:cb:fe:3b:a5:49: 7e:85:66:4d:26:a4:8f:ee:d1:82:86:06:58:6b:53: 8c:6d:59:a2:85:4a:d0:f8:2f:3b:f2:13:1f:1d:2e: cc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9F:12:91:7A:7F:5A:0C:57:E2:3D:74:7C:95:96:D7:D9:F0:2A:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852d978-23e6-49f4-9d03-547fcdc12c82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.180.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:e3:bd:35:70:76:45:75:5e:fa:20:2d:75:7b:80:f5:23:43: 72:83:8e:76:de:d4:6c:c4:b2:eb:8c:73:de:b8:15:fe:72:8f: 63:45:95:dc:b8:9f:2a:22:6e:eb:97:8f:d5:53:72:c4:f2:30: 18:47:4e:d5:19:77:e7:ba:70:a1:27:b6:10:8d:b4:2c:1f:d6: 9f:d6:8d:e0:40:fa:3c:fd:a3:8e:a2:af:4c:4c:ca:02:88:76: 42:89:8e:5b:d6:42:a1:d0:e6:2d:d6:35:71:55:95:78:45:2d: 70:89:af:6c:d0:fc:c2:c2:15:1b:cc:5d:d1:ba:b4:f5:0c:29: 63:18:e9:79:a1:33:97:a8:7a:12:a1:eb:a1:9d:f5:b2:1f:75: b9:3a:38:d0:b2:a4:a6:84:2e:05:c9:13:4a:29:01:60:30:a2: 98:c6:5d:fa:e4:a2:1d:f7:8c:a6:21:06:d6:f0:7d:ad:23:50: 3f:75:3b:c9:d1:4f:af:57:f5:c6:54:42:d7:31:82:8f:f9:db: 00:4c:c3:20:ce:64:85:62:b2:63:f7:cf:5b:c6:ec:e7:f4:4a: d7:07:b7:2d:74:9b:96:ce:2e:12:c5:30:b0:cf:2b:a4:23:cc: d3:07:be:5e:83:c5:25:75:79:f5:3d:e0:f7:65:1b:e3:c0:71: 47:e2:d0:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeiVIAnY8IgDSVgkUH0y/nsrZqqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAxMDU4WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWY4YTUyMjliNDI5YmQxZTdkM2RiYjE3MmMzZDY2YWRj YmRjYzA1NjE5NzVhNDQ0OTY1NjM5NzdjMTAzYjAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWdIPeb62/A+B8YpL3WCvNznQQvpQetndc0vvk27siTbT9 5PgOAOwCpEmWXwjgtKwYkyC8XljbhoqvNl6i4Z1g+LFYVNwnFAods3ePrQRDlMlp eucmLSMz3KAiN0fKyS7PLQhYWoZ1WXAHrAjhfnp2sYbcuFY4/gL630zKC8M89XCa lJuII9fNbwGIcF5FjP6C1DVjbwfhpCngTzQMbPaFr12G+v6J/1HDqatUE6GF51Ia w7d3czpvPP4YSVK9AnQ4HXWEPw58PZ5+pR1wGE19QPQJt6AdLn9+bvnL/julSX6F Zk0mpI/u0YKGBlhrU4xtWaKFStD4LzvyEx8dLsyfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPJ8SkXp/WgxX4j10fJWW19nwKpIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4NTJkOTc4LTIzZTYtNDlmNC05ZDAzLTU0N2ZjZGMxMmM4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQtDANBgkqhkiG9w0BAQsFAAOCAQEAbuO9NXB2RXVe+iAtdXuA9SNDcoOO dt7UbMSy64xz3rgV/nKPY0WV3LifKiJu65eP1VNyxPIwGEdO1Rl357pwoSe2EI20 LB/Wn9aN4ED6PP2jjqKvTEzKAoh2QomOW9ZCodDmLdY1cVWVeEUtcImvbND8wsIV G8xd0bq09QwpYxjpeaEzl6h6EqHroZ31sh91uTo40LKkpoQuBckTSikBYDCimMZd +uSiHfeMpiEG1vB9rSNQP3U7ydFPr1f1xlRC1zGCj/nbAEzDIM5khWKyY/fPW8bs 5/RK1we3LXSbls4uEsUwsM8rpCPM0we+XoPFJXV59T3g92Ub48BxR+LQag== -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:54 2026 by rpki-client